Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AI PoC Generator & CVE Exploit Database

We aggregate public proof-of-concept (PoC) code from GitHub and the security community, and use a Shenlong Agent (LLM-based) pipeline to generate technical PoC walk-throughs for high-severity CVEs. Public PoCs are free; AI-generated PoCs are a Pro / Pro+ feature. Each entry links back to its source CVE detail page for full context, references, and patches.

最新 POC 列表

Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.
Filter
Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access.Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access. Log in / View plans
CVE-2026-33718OpenHands is Vulnerable to Command Injection through its Git Diff Handler AI Paid
Qwen3.6-35B-A3B · 9823 chars · 2026-05-08 01:59
CVE-2026-33506DOM-Based XSS in Ory Polis Login Page AI Paid
Qwen3.6-35B-A3B · 5737 chars · 2026-05-08 01:58
CVE-2026-4953mingSoft MCMS Editor Endpoint BaseAction.java catchImage server-side request forgery AIVerified env Paid
Qwen3.6-35B-A3B · 7423 chars · 2026-05-08 01:44
CVE-2026-33757OpenBao lacks user confirmation for OIDC direct callback mode AIVerified env Paid
Qwen3.6-35B-A3B · 8725 chars · 2026-05-08 01:42
CVE-2026-41936Vvveb < 1.0.8.2 XML External Entity Injection via Import AI Paid
Qwen3.6-35B-A3B · 8729 chars · 2026-05-08 01:27
CVE-2026-44331ProFTPD 1.3.9a之前存在SQL注入漏洞 AI Paid
Qwen3.6-35B-A3B · 7301 chars · 2026-05-08 01:21
CVE-2026-7414Hardcoded credentials in Yarbo robot firmware AI Paid
Qwen3.6-35B-A3B · 10886 chars · 2026-05-08 01:14
CVE-2026-7415Open MQTT orchestration without read/write ACLs in Yarbo robot firmware AIVerified env Paid
Qwen3.6-35B-A3B · 10212 chars · 2026-05-08 01:08
CVE-2026-41934Vvveb < 1.0.8.2 Authenticated RCE via Code Editor AI Paid
Qwen3.6-35B-A3B · 8926 chars · 2026-05-08 01:07
CVE-2026-41938Vvveb < 1.0.8.2 RCE via Media Upload Handler AIVerified env Paid
Qwen3.6-35B-A3B · 4245 chars · 2026-05-08 01:02
CVE-2026-33891Forge has Denial of Service via Infinite Loop in BigInteger.modInverse() with Zero Input AIVerified env Paid
Qwen3.6-35B-A3B · 6522 chars · 2026-05-08 00:57
CVE-2026-33895Forge has signature forgery in Ed25519 due to missing S > L check AIVerified env Paid
Qwen3.6-35B-A3B · 12246 chars · 2026-05-08 00:49
CVE-2026-33906Ella Core has Privilege Escalation via Database Restore by NetworkManager role AIVerified env Paid
Qwen3.6-35B-A3B · 11598 chars · 2026-05-08 00:47
CVE-2026-33937Handlebars.js has JavaScript Injection via AST Type Confusion AI Paid
Qwen3.6-35B-A3B · 7009 chars · 2026-05-08 00:45